On the other hand, there is a common belief that Bitcoin network is secure till majority of mining power (i.e. more than 1/2) is honest, that means Byzantine Fault Tolerant threshold of Bitcoin network is 1/2.

1 Answer
1

It depends on what you're actually asking. Bitcoin doesn't exist within the normal model of BFT consensus so in one sense the answer is mu.

Under conventional assumptions Bitcoin will converge on a stable history if honest participants have a majority hashpower. But the arguments given as to why you could expect this hashpower majority assumption to hold are essentially economic.

You can show under some models, at least, that if the behavior of hashpower is governed by short term profitability, that if attackers control more than a third then they can make it more profitable for the profit seeking rest to essentially cooperate. See selfish-mining for an example (the exact threshold for selfish-mining depends on the attacker's communication advantage, which is one of the reasons that block propagation and worst case block propagation speeds are a concern). This doesn't contradict the above because it requires that the miners be profit-maximizing rather than honest... but it is a fair argument in light of the economic arguments for the existence of hashpower to begin with.

Interestingly, if you assume that hashpower increases exponentially forever for both the defenders and the attackers ( e.g. you take Moore's law to be an actual physical law ) then any attacker that maintains any constant fraction of the hashpower will 'eventually' replace the chain with probability 1, including tiny fractions like 0.001%. This isn't an actual weakness, however, because the resulting time that the attacker would have to persist while getting no income from their attack quickly turns into trillions of years for sensible numbers, but it's interesting to think about as just an example of how different from BFT consensus Bitcoin is.